Memory Corruption Issue in Qualcomm Camera Kernel Driver
CVE-2024-45579

7.8HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 6 May 2025

What is CVE-2024-45579?

A memory corruption vulnerability exists within the Qualcomm camera kernel driver. It arises from the absence of necessary memory requirement checks when handling IOCTL calls from userspace to retrieve request information. This flaw could potentially be exploited by attackers aiming to manipulate the operation of the camera driver, leading to system instability or unauthorized access.

Affected Version(s)

Snapdragon Snapdragon Mobile FastConnect 6900

Snapdragon Snapdragon Mobile FastConnect 7800

Snapdragon Snapdragon Mobile SDM429W

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2025
Vulnerability Reserved
Sep 2, 2024